MikroTik RouterOS < 6.43.12 (stable) / < 6.42.12 (long-term) - Firewall and NAT Bypass

MikroTik RouterOS 6.43.12 stable / 6.42.12 long-term - Firewall and NAT Bypass CVE-2019-3924 A remote, unauthenticated attacker can proxy traffic through RouterOS via probes sent to the agent binary. This PoC demonstrates how to exploit a LAN host from the WAN. A video demonstrating the attack ca...

MikroTik RouterOS 6.43.12 (stable) 6.42.12 (long-term) - Firewall and NAT Bypass

MikroTik RouterOS 6.43.12 stable 6.42.12 long-term - Firewall and NAT Bypass CVE-2019-3924 A remote, unauthenticated attacker can proxy traffic through RouterOS via probes sent to the agent binary. This PoC demonstrates how to exploit a LAN host from the WAN. A video demonstrating the attack can ...

Procyon Core Server HMI Coreservice.exe Stack Buffer Overflow

This module exploits a vulnerability in the coreservice.exe component of Proycon Core Server "Procyon Core Server HMI Coreservice.exe Stack Buffer Overflow", 'Description' = %q This module exploits a vulnerability in the coreservice.exe component of Proycon Core Server MSF...

citrix xencenterweb - Cross-Site Scripting SQL Injection Remote Code Execution

citrix xencenterweb - Cross-Site Scripting SQL Injection Remote Code Execution Secure Network - Security Research Advisory Vuln name: Citrix XenCenterWeb Multiple Vulnerabilities Systems affected: Citrix XenCenterWeb Systems not affected: n/a Severity: High Local/Remote: Remote Vendor URL:...

citrix xencenterweb - Cross-Site Scripting / SQL Injection / Remote Code Execution

Secure Network - Security Research Advisory Vuln name: Citrix XenCenterWeb Multiple Vulnerabilities Systems affected: Citrix XenCenterWeb Systems not affected: n/a Severity: High Local/Remote: Remote Vendor URL: http://www.citrix.com Authors: Alberto Trivero [email protected] - Claudio...

gcaldaemon-dos.txt

Secure Network - Security Research Advisory Vuln name: GCALDaemon Remote DoS Systems affected: GCALDaemon 1.0-beta13 all platforms Systems not affected: - Severity: Low Local/Remote: Remote Vendor URL: http://gcaldaemon.sourceforge.net/ Authors: Luca "ikki" Carettoni -...

IRM 013: Ultraapps Issue Manager is vulnerable to Privilege Escalation

---------------------------------------------------------------------- IRM Security Advisory No. 013 Ultraapps Issue Manager is vulnerable to Privilege Escalation Vulnerablity Type / Importance: Privilege Escalation / High Problem discovered: November 25th 2005 Vendor contacted: November 25th 200...

Apple Mac OSX 10.3.3 - AppleFileServer Overflow Remote Code Execution

!/usr/bin/perl Priv8security com remote root exploit for AppleFileServer. PUBLIC VERSION!!!! Bug found by Dave G. and Dino Dai Zovi. URL: http://www.atstake.com/research/advisories/2004/a050304-1.txt wsxz@localhost buffer$ perl priv8afp.pl -h 10.4.12.199 -t 0 -=Priv8security.com Apple File Server...